This Privacy Policy explains how 3taya365 collects, uses, stores, discloses, and protects the personal data of players and visitors to the Platform, in accordance with the Philippine Data Privacy Act of 2012 (Republic Act No. 10173) and PAGCOR's player data protection requirements.
Six principles that govern how 3taya365 handles your personal information. Full legal details follow in the sections below.
3taya365 collects only the personal data that is strictly necessary for the purposes described in this Policy. We do not collect data speculatively or in excess of what our regulatory obligations require.
All personal data held by 3taya365 is stored on secured servers using industry-standard encryption. Passwords are never stored in plain text. Financial data is processed through PCI-DSS compliant payment infrastructure.
You have clearly defined rights under RA 10173 — including access, correction, deletion, and portability of your data. 3taya365 provides a dedicated channel for exercising these rights with no unnecessary barriers.
3taya365 does not sell, rent, or trade your personal data to third parties for their own marketing purposes. Data sharing with third parties is limited to what is necessary for service delivery, regulatory compliance, and AML obligations.
Personal data is retained only for as long as required by law or legitimate business purpose. Once retention periods expire, data is securely deleted or anonymised. PAGCOR and AMLC retention requirements take precedence where they apply.
In the event of a personal data breach that poses a real risk to your rights and freedoms, 3taya365 will notify affected players and the National Privacy Commission (NPC) within the timeframes prescribed by RA 10173 and its implementing rules.
3taya365 (the "Company," "we," "us," or "our") operates the online casino and sports betting platform accessible at 3taya365.one (the "Platform"). 3taya365 is a PAGCOR-licensed online gaming operator serving Filipino players in the Philippines.
For the purposes of the Philippine Data Privacy Act of 2012 (Republic Act No. 10173, "DPA") and its Implementing Rules and Regulations, 3taya365 is the personal information controller ("PIC") in respect of the personal data it collects about players, registered users, and visitors to the Platform.
Our designated Data Protection Officer ("DPO") can be contacted for all data privacy inquiries at [email protected]. Please mark the subject line of your email "Data Privacy Inquiry" so it reaches the DPO directly.
3taya365 collects the following categories of personal data in the course of providing its services:
| Category | Examples | Collection Point |
|---|---|---|
| Identity Data | Full legal name, date of birth, nationality, government ID type and number | Registration, KYC verification |
| Contact Data | Email address, Philippine mobile number, home address | Registration, KYC, support tickets |
| Financial Data | GCash account number, Maya account number, bank account details, deposit and withdrawal records | Payment processing, KYC |
| Transaction Data | Deposit amounts, withdrawal amounts, wager history, game session records, bonus usage, win/loss history | Platform activity (automatic) |
| Technical Data | IP address, device type, operating system, browser type, session duration, login timestamps | Platform access (automatic) |
| Profile Data | Account preferences, language settings, communication preferences, game preferences, responsible gaming limits set | Account settings (user-provided) |
| Communications Data | Support chat transcripts, email correspondence, complaint records | Customer support interactions |
| Verification Data | Government-issued ID images, selfie photographs submitted for identity verification | KYC verification process |
3taya365 does not knowingly collect sensitive personal information (as defined under the DPA, including but not limited to health data, biometric data used for identification, racial or ethnic origin, and political opinions) except where required by PAGCOR or AMLC regulations, in which case collection is performed only to the minimum extent necessary.
3taya365 collects personal data through the following means:
3taya365 processes your personal data only where a lawful basis exists under the Philippine Data Privacy Act. The following bases apply to 3taya365's processing activities:
3taya365 uses your personal data for the following purposes:
3taya365 does not use your personal data for automated decision-making that produces legal or similarly significant effects on you without human review, except where required by regulatory obligations such as AML screening.
3taya365 does not sell, rent, or trade your personal data to third parties for their own commercial purposes. Data is shared with third parties only in the following circumstances and to the minimum extent necessary:
All third parties with whom 3taya365 shares personal data are required to handle that data in compliance with the DPA and, where applicable, equivalent international data protection standards. Third parties are not permitted to use your personal data for their own independent purposes.
3taya365 uses cookies and similar tracking technologies on the Platform for the following purposes:
You can manage cookie preferences through your browser settings. Disabling non-essential cookies will not prevent you from accessing the Platform, though some functionality improvements and preference-saving features may be affected. Disabling essential cookies will impair the Platform's core functionality and security.
3taya365 retains your personal data for the following periods, or longer where required by law:
| Data Category | Retention Period | Basis |
|---|---|---|
| Account & Identity Data | Duration of account + 5 years after closure | PAGCOR licensing, AMLA requirements |
| Financial Transaction Records | 10 years from transaction date | AMLA Section 9 record-keeping obligation |
| KYC Verification Documents | Duration of account + 5 years after closure | PAGCOR, AMLC regulatory requirements |
| Game Session Logs | 3 years from session date | Dispute resolution, PAGCOR audit requirements |
| Support Communications | 3 years from last interaction | Legitimate interests (complaint management) |
| Marketing Consent Records | Until consent withdrawn + 1 year | DPA consent documentation requirement |
| Technical / Access Logs | 12 months from generation | Security, fraud prevention |
Upon expiry of applicable retention periods, personal data is securely deleted or irreversibly anonymised. Where anonymisation is applied, the resulting anonymised dataset is no longer considered personal data and is not subject to the DPA.
3taya365 implements a layered set of technical and organisational security measures designed to protect your personal data against unauthorised access, alteration, disclosure, and destruction:
Notwithstanding these measures, no online platform can guarantee absolute security. You are encouraged to use a strong, unique password for your 3taya365 account and to enable all available account security features.
Under the Philippine Data Privacy Act of 2012, you have the following rights with respect to your personal data held by 3taya365. These rights are not absolute and are subject to limitations prescribed by law, including PAGCOR's regulatory requirements and AMLA record-keeping obligations.
Request a copy of the personal data 3taya365 holds about you, along with information about how it is being used.
Request correction of inaccurate or incomplete personal data. Some corrections may require supporting documentation.
Request deletion of your personal data where it is no longer necessary, subject to overriding retention obligations under PAGCOR and AMLA regulations.
Object to processing of your data carried out on the basis of legitimate interests, including direct marketing activities.
Receive a structured, machine-readable copy of personal data you provided to 3taya365, where technically feasible and legally permissible.
Request that 3taya365 restrict the processing of your personal data in certain circumstances, for example while a rectification request is being assessed.
To exercise any of the above rights, submit a written request to [email protected] with the subject line "Data Subject Rights Request." 3taya365 will acknowledge your request within five business days and will respond substantively within 15 business days, or notify you if a longer period is required. Identity verification may be required before the request is actioned.
If you are unsatisfied with 3taya365's response to your data privacy request, you have the right to lodge a complaint with the National Privacy Commission (NPC) of the Philippines.
The 3taya365 Platform is strictly prohibited for persons under 21 years of age, consistent with PAGCOR's minimum age requirement for online gambling in the Philippines. 3taya365 does not knowingly collect personal data from individuals under the age of 21.
If 3taya365 becomes aware that personal data has been collected from a person under 21, it will take immediate steps to delete that data and close the associated account. Any funds deposited into an account held by a person under 21 will be returned to the deposit source.
If you have reason to believe that a person under 21 has registered on the Platform, please contact us immediately at [email protected].
3taya365 primarily processes and stores personal data on servers located within or in jurisdictions permitted under Philippine data protection law. Where personal data is transferred outside the Philippines — for example, to internationally based game providers or technology infrastructure providers — such transfers are carried out only where:
3taya365 does not transfer personal data to jurisdictions that do not offer an adequate standard of data protection without implementing appropriate contractual safeguards.
The 3taya365 Platform may contain references to third-party services — including game providers and payment platforms — whose privacy practices are governed by their own independent privacy policies. 3taya365 is not responsible for the data practices of third-party platforms and does not endorse or warrant their privacy standards.
When you interact with a payment provider such as GCash or Maya to process a transaction, you are also subject to that provider's privacy policy. 3taya365 encourages you to review the privacy policies of any third-party service you use in connection with your 3taya365 account.
3taya365 reserves the right to amend this Privacy Policy at any time in order to reflect changes in applicable law, regulatory requirements, Platform functionality, or our data processing practices. All changes will be published on the Platform at 3taya365.one/privacy-policy, and the "Last Updated" date at the top of this document will be revised accordingly.
Where changes are material, 3taya365 will provide reasonable notice to registered players by email or in-account notification prior to the changes taking effect. Your continued use of the Platform following the effective date of any amendment constitutes your acknowledgment of the revised Policy.
The version of this Privacy Policy published at 3taya365.one/privacy-policy at any given time is the current and governing version. Prior versions are superseded in their entirety.
For all data privacy inquiries, data subject rights requests, complaints, or concerns regarding 3taya365's handling of your personal data, please contact our Data Protection Officer using the details below:
3taya365 aims to acknowledge all data privacy requests within five business days and to respond substantively within 15 business days. For urgent matters involving suspected data breaches or account security, please use the live chat function for the fastest response.
If you believe your data privacy rights have been violated and 3taya365's response is unsatisfactory, you may file a complaint with the National Privacy Commission of the Philippines (NPC). Details on the NPC's complaint process are available on the NPC's official website.